Hancock College is requiring all users to utilize a security measure known as Multi-Factor Authentication (MFA). MFA enhances security by requiring users to provide two or more verification factors to confirm their identity before accessing a Hancock College system. It combines different types of authentication to make it significantly harder for unauthorized individuals to gain access, even if they manage to obtain your password. Additional authentication methods may involve sending a One-Time Passcode (OTP) to your phone number or email address. They could also include utilizing mobile applications, specialized USB security devices, or relying on trusted networks, such as the Hancock College Wi-Fi, to verify identity.

Time line

• Current – All faculty and staff have been using MFA for log in since 2021
• Spring 2025 – All first-time students will need to use MFA to log in
• Summer 2025 – All returning students will need to use MFA to log in

Student MFA

Students will need to use Multi-Factor Authentication (MFA) during their first login in each browser session. By default, an OTP (One-Time Passcode) will be sent to their personal email address (not their my.hancockcollege.edu email). If this email address is outdated or inaccessible, students may opt for alternate methods, such as receiving the OTP via an SMS phone number. For those using public computers at any Hancock College campus or connected to the college's Wi-Fi network, no additional MFA steps will be required. Once logged in successfully, students will only need their password for subsequent logins on that specific web browser.

Students have the following MFA options:

• Personal email address (not a my.hancockcollege.edu email)
• SMS Text message number
• Mobile authenticator applications (Google Authenticator, Microsoft Authenticator, Authy, etc.)
• USB Security Devices (FIDO2 USB Key or Yubikey)
• Phone or device based Passkeys (iOS, Android, Windows Hello)
• Connecting to the Hancock College Wi-Fi network

Employee MFA

Employees have different authentication requirements depending on their role. Most faculty members, temporary workers and classified workers that do not have access to sensitive systems need to use Multi-Factor Authentication (MFA) during their first login in each browser session. These employees have the following MFA options:

• Personal email address (not a my.hancockcollege.edu email)
• SMS Text message number
• Mobile authenticator applications (Google Authenticator, Microsoft Authenticator, Authy, etc.)
• USB Security Devices (FIDO2 USB Key or Yubikey)
• Phone or device based Passkeys (iOS, Android, Windows Hello)
• Connecting to the Hancock College Wi-Fi network

Employees with access to sensitive systems will need to use MFA periodically on each browser session to confirm their identity. These employees will be provided with a FIDO2 USB security key by the ITS department and have a more limited set of MFA options:

• Mobile authenticator applications (Google Authenticator, Microsoft Authenticator, Authy, etc.)
• USB Security Devices (FIDO2 USB Key or Yubikey)
• Phone or device based Passkeys (iOS, Android, Windows Hello)

Using MFA

Logging in with MFA

When a user has Multi-Factor Authentication enabled, one additional step is added to the log in process. Following a correct username and password entry the user will see form requesting the user enter a One Time Passcode (OTP):

This passcode is a multi digit number which verifies the user from one of the Mutli-Factor Authentication delivery methods. When the form opens an OTP is sent to the user's default Multi-Factor Authentication delivery method. If the default method is not available the user can click the "Problems with OTP?" link which will give the user options to enter in any additional Multi-Factor Authentication delivery methods. The email address and phone numbers will be partially masked for security. Clicking on the "Send OTP as ...." link will trigger an SMS or Email to be sent or a prompt will be brought up to use the Mobile Authenticator App or enter a Help Desk provided OTP.

Updating Multi-Factor Authentication Methods

The myHancock Portal's dashboard displays the current username, OTP email address and OTP phone number for a user in a widget named Account Info. Updating personal email and phone number for OTPs can be done by clicking the "Update Personal Information" button.

Personal Email Address - a personal email address can be updated by using the Personal Information form on Banner Self Service or on the myHancock portal Account Info widget.

To update the "Personal and Password Reset Email" address, click the pencil icon below the email address and enter a new address.

Only one personal and password reset email address can be used.

SMS/Text Message - an SMS capable cell phone number can be added via the Personal Information form on Banner Self Service. To set the default phone number used to deliver One Time Passcodes the "Text Message" phone type must be used. To edit an existing Text Message number click the pencil icon below the phone number and enter a new number. To add a new phone number, click the "(+) Add New" link, select a "Text Message" type and enter the new number.

Additional, backup phone numbers can be added on the Account Management page by expanding the "Registered Phones" section and following the prompts to enter a phone number. Phone numbers entered through this method can not be used as the default OTP delivery method, but they can be used to deliver an OTP by clicking on the "Problems with OTP?" link on the OTP entry form.

ITS provides documentation on setting up these other MFA methods:

• Add a Mobile Authenticator app like Google Authenticator
• Add a USB Security Device
• Add a Passkey on your phone

Changing Default One Time Passcode Delivery Method

Users can control which delivery method is used to send the OTP after entering the user's password. This can be configured in the Account Management page by expanding the Mutli-Factor Delivery Methods section.

In this section a user can determine which Multi-Factor Authentication method is to be used for each type of action that requires an OTP. To update the Muti-Factor method for normal logins the user will click the "Change" button at the end of the "Website Login" row. Below, all available methods will be shown and the user can select a new method and click continue. Users can set the OTP methods used for account unlocks and password changes.

OTP Delivery Method Unavailable

When an OTP is required for a user to login or change a password, the user might find that the default method the OTP is being sent is no longer accessible or is incorrect. It is possible the user has another OTP delivery method set up, such as an SMS phone. Click the "Problems with the OTP?" link. This will bring up a list of all the available OTP delivery methods available to the user. If one of these methods such as a phone number is accessible by the user the user can click the "Send OTP as SMS" link to send a new OTP to the number listed. 

If none of the methods on the "Problems with the OTP?" link page are accessible the user will need to contact staff at Hancock College. 

• Employees should contact the Help Desk at ext. 3345 or helpdesk@hancockcollege.edu 
• Students must visit or call Admissions and Records. The student should ask the Admissions and Records staff to update their "Personal Email Address". The student will need to prove their identity to Admissions and Records staff.